This entry is part 31 of 52 in the series HIPAA Security Risk Analysis Tips

Notwithstanding the efforts by HHS (from within both OCR and CMS) to educate Covered Entities and Business Associates as to what comprises a bona fide HIPAA Security Risk Analysis, fear, uncertainty, doubt and misinformation continue to swirl around.  See what you know.   Here’s today’s big tip — Take a Quiz to See if You Know the Basics! 

HIPAA Security Risk Analysis Tips – Take Risk Analysis Quiz!

It’s your turn to see if you know some of the basics of a HIPAA Security Risk Analysis.

The HIPAA Security Rule, at 45 CFR §164.308(a)(1)(ii)(A) requires that all Covered Entities and Business Associates complete a bona fide HIPAA Security Risk Analysis.  The regulation reads:

45 C.F.R. §164.308(a)(1)(i) Standard: Security Management Process

(1)(i) Standard: Security management process. Implement policies and procedures to prevent, detect, contain, and correct security violations.
(ii) Implementation specifications:
(A) Risk analysis (Required). Conduct an accurate and thorough assessment of the potential risks and vulnerabilities to the confidentiality, integrity, and availability of electronic protected health information held by the covered entity.

Test your HIPAA Security Risk Analysis knowledge now:


Learn more About Doing an authentic HIPAA Security Risk Analysis…

The HIPAA Security Rule (at 45 C.F.R. §164.308(a)(1)(ii)(A)) requires an initial security risk analysis according to risk analysis guidance issued by HHS/OCR based on NIST standards. The one-of-a-kind Clearwater HIPAA Risk Analysis is guaranteed to simplify that process, immediately identify threats and vulnerabilities and make risk analysis less overwhelming.
OCR Audit Protocols for Risk Analysis are clear! CMS, as planned, has launched audits of organizations who have attested to Meaningful Use Objectives and Risk Analyses will be audited.  Have you completed a bona fide HIPAA Security Risk Analysis?
The subscription fee to the Clearwater HIPAA Risk Analysis™ is based on the size of the organization in an effort to make this powerful tool available to organizations of all sizes.  
OR, call 800-704-3394 X3007 Today!
harnessing risk starts with a bona fide risk analysis
harnessing risk starts with a bona fide risk analysis
Series Navigation<< HIPAA Security Risk Analysis Tips – Open Letter to VITOHIPAA Security Risk Analysis Tips – HHS Mobile Device Guidance >>

Bob Chaput

CEO at Clearwater Compliance
Bob is the CEO and Founder of Clearwater Compliance. He has 25 years of experience in the Healthcare industry, and his experience includes managing some of the world’s largest HR, benefits and healthcare databases, requiring the highest levels of security and privacy. Mr. Chaput continues to expand and update his knowledge base on HIPAA-HITECH compliance through postgraduate study, earning professional certifications and participating in professional healthcare and other organizations.